$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa File: AS28481.roa (raw, json) Hash identifier: LF7zxD48vYd8hgi0zNNPOw7j+uLvtLO4vFKImRjZsAc= Subject key identifier: 52:FE:85:0B:4E:8F:B8:7C:BE:F7:1E:1F:DE:10:0A:24:33:21:68:DB Certificate issuer: /CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Certificate serial: 63A7D48075D9CE4FE8CBC0A4436B5B5CD0FAACD0 Authority key identifier: E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject info access: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa Signing time: Wed 19 Mar 2025 05:35:00 +0000 ROA not before: Wed 19 Mar 2025 05:30:00 +0000 ROA not after: Wed 18 Mar 2026 05:35:00 +0000 asID: 28481 IP address blocks: 177.225.216.0/21 maxlen: 21 189.195.46.0/24 maxlen: 24 189.196.168.0/22 maxlen: 24 200.92.220.0/22 maxlen: 22 200.92.232.0/22 maxlen: 22 200.94.228.0/23 maxlen: 23 200.94.230.0/23 maxlen: 23 200.94.232.0/23 maxlen: 23 200.94.234.0/23 maxlen: 23 200.94.236.0/23 maxlen: 24 201.132.132.0/22 maxlen: 23 201.132.136.0/21 maxlen: 22 201.132.144.0/21 maxlen: 22 201.132.156.0/22 maxlen: 23 201.164.48.0/21 maxlen: 22 Validation: OK Signature path: rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.mft rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer Signature path expires: Sat 26 Apr 2025 15:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:a7:d4:80:75:d9:ce:4f:e8:cb:c0:a4:43:6b:5b:5c:d0:fa:ac:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E71A68011C0812045A1DBBC6433B7791B5DDF0D2 Validity Not Before: Mar 19 05:30:00 2025 GMT Not After : Mar 18 05:35:00 2026 GMT Subject: CN=52FE850B4E8FB87CBEF71E1FDE100A24332168DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:90:d0:59:82:e3:8b:32:fc:cf:82:f0:8a:4c: a3:67:f3:8f:0c:a0:e3:8d:eb:c7:35:85:07:36:ba: 5c:cc:3b:46:c7:89:a7:15:0c:0c:fe:e9:dc:eb:23: bf:e5:3b:67:df:02:b4:28:2d:88:f2:9b:16:76:2d: 92:d6:19:e5:70:1a:65:5f:c4:81:19:8a:5d:2e:4c: 6d:09:1d:b2:04:80:de:aa:11:9b:c3:d4:74:bf:60: b4:0f:2b:60:92:09:09:92:d8:9d:59:6a:d8:a9:a8: b8:1d:18:a0:40:ac:e5:85:56:f3:67:f3:8e:4a:c7: ef:b3:b0:3c:48:aa:ee:c3:55:14:b5:c3:ef:1b:d5: 38:b8:28:da:a8:20:01:58:6c:ad:2f:6b:32:24:e0: cf:9a:03:1b:ba:13:12:4f:58:ba:c0:d5:d6:3c:ea: 3a:97:27:86:c7:77:bd:79:30:06:8d:a4:f0:1a:df: 34:85:53:b3:4c:c9:04:19:8e:ac:dd:74:64:69:16: bc:c8:f1:05:d7:02:05:43:e4:27:f1:dc:fc:e1:de: dc:f5:d2:ba:05:c9:8b:b8:43:5a:bf:b5:c9:e5:3f: 13:b6:0d:ad:79:e7:6c:9d:55:42:55:c5:0c:f0:92: 65:9b:6f:af:74:cd:5f:53:f6:d0:c0:d4:37:ba:e4: 66:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FE:85:0B:4E:8F:B8:7C:BE:F7:1E:1F:DE:10:0A:24:33:21:68:DB X509v3 Authority Key Identifier: keyid:E7:1A:68:01:1C:08:12:04:5A:1D:BB:C6:43:3B:77:91:B5:DD:F0:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.crl Authority Information Access: CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E71A68011C0812045A1DBBC6433B7791B5DDF0D2.cer Subject Information Access: Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/561568D8C9ADDDCA3CE770397277D5396B63174DB0C7B08B578633BC3267E147/0/AS28481.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 177.225.216.0/21 189.195.46.0/24 189.196.168.0/22 200.92.220.0/22 200.92.232.0/22 200.94.228.0-200.94.237.255 201.132.132.0-201.132.151.255 201.132.156.0/22 201.164.48.0/21 Signature Algorithm: sha256WithRSAEncryption 95:a7:86:11:fa:39:71:4d:e6:83:fd:00:79:11:7b:06:0c:bc: 22:3d:74:3e:39:39:b3:25:6c:90:41:de:34:a9:04:2b:1f:d4: 7f:69:15:06:85:c0:e1:71:9c:24:d5:f2:55:41:6c:94:05:12: bf:ac:8c:be:49:f1:75:98:f3:90:f9:59:6d:f6:d7:83:d3:4c: 24:34:63:89:79:1f:4a:81:90:9b:14:61:19:2e:79:e9:ae:d1: b3:28:25:fe:02:29:4d:c4:d0:1f:51:8c:f8:6a:9c:60:6e:a2: ae:91:01:98:f6:43:b0:f4:91:df:00:13:e4:86:75:1a:c6:3d: 71:b5:fe:b5:4c:ca:d3:eb:62:6a:09:60:9b:50:9b:31:54:1f: 94:75:d8:71:98:f4:5f:de:4d:1e:e0:5e:ed:1a:b3:ec:03:08: 7a:da:b0:f2:9d:6a:84:8a:23:20:17:8b:a3:ce:0e:e3:fb:52: 5e:d9:67:21:4a:00:0f:de:59:c2:3f:d5:a2:30:28:c2:be:9c: 87:3a:d4:60:64:d7:c1:d1:55:b4:f1:52:d7:0c:d3:f1:e9:f2: fc:a0:31:16:9c:ea:74:81:a2:b3:11:bc:78:3a:12:67:c7:7e: 7f:50:96:66:23:ba:a2:ee:b5:ab:f1:17:c7:f9:62:b5:60:1b: 1b:b9:b7:36 -----BEGIN CERTIFICATE----- MIIFzjCCBLagAwIBAgIUY6fUgHXZzk/oy8CkQ2tbXND6rNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTcxQTY4MDExQzA4MTIwNDVBMURCQkM2NDMzQjc3OTFC NURERjBEMjAeFw0yNTAzMTkwNTMwMDBaFw0yNjAzMTgwNTM1MDBaMDMxMTAvBgNV BAMTKDUyRkU4NTBCNEU4RkI4N0NCRUY3MUUxRkRFMTAwQTI0MzMyMTY4REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOkNBZguOLMvzPgvCKTKNn848M oOON68c1hQc2ulzMO0bHiacVDAz+6dzrI7/lO2ffArQoLYjymxZ2LZLWGeVwGmVf xIEZil0uTG0JHbIEgN6qEZvD1HS/YLQPK2CSCQmS2J1ZatipqLgdGKBArOWFVvNn 845Kx++zsDxIqu7DVRS1w+8b1Ti4KNqoIAFYbK0vazIk4M+aAxu6ExJPWLrA1dY8 6jqXJ4bHd715MAaNpPAa3zSFU7NMyQQZjqzddGRpFrzI8QXXAgVD5Cfx3Pzh3tz1 0roFyYu4Q1q/tcnlPxO2Da1552ydVUJVxQzwkmWbb690zV9T9tDA1De65GbNAgMB AAGjggLYMIIC1DAdBgNVHQ4EFgQUUv6FC06PuHy+9x4f3hAKJDMhaNswHwYDVR0j BBgwFoAU5xpoARwIEgRaHbvGQzt3kbXd8NIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l dC9ycGtpL2xhY25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZC NjMxNzREQjBDN0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvRTcxQTY4MDExQzA4MTIw NDVBMURCQkM2NDMzQjc3OTFCNURERjBEMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2 RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FNzFBNjgwMTFDMDgxMjA0NUEx REJCQzY0MzNCNzc5MUI1RERGMEQyLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh Y25pYy81NjE1NjhEOEM5QURERENBM0NFNzcwMzk3Mjc3RDUzOTZCNjMxNzREQjBD N0IwOEI1Nzg2MzNCQzMyNjdFMTQ3LzAvQVMyODQ4MS5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBfBggrBgEFBQcBBwEB/wRQME4wTAQCAAEwRgMEA7Hh2AME AL3DLgMEAr3EqAMEAshc3AMEAshc6DAMAwQCyF7kAwQByF7sMAwDBALJhIQDBAPJ hJADBALJhJwDBAPJpDAwDQYJKoZIhvcNAQELBQADggEBAJWnhhH6OXFN5oP9AHkR ewYMvCI9dD45ObMlbJBB3jSpBCsf1H9pFQaFwOFxnCTV8lVBbJQFEr+sjL5J8XWY 85D5WW3214PTTCQ0Y4l5H0qBkJsUYRkueemu0bMoJf4CKU3E0B9RjPhqnGBuoq6R AZj2Q7D0kd8AE+SGdRrGPXG1/rVMytPrYmoJYJtQmzFUH5R12HGY9F/eTR7gXu0a s+wDCHrasPKdaoSKIyAXi6PODuP7Ul7ZZyFKAA/eWcI/1aIwKMK+nIc61GBk18HR VbTxUtcM0/Hp8vygMRac6nSBorMRvHg6EmfHfn9QlmYjuqLutavxF8f5YrVgGxu5 tzY= -----END CERTIFICATE-----Generated at Wed Apr 23 06:17:55 2025 by rpki-client